Security Consultant - Governance Risk Compliance
Date: 15 Jul 2026
Location: Singapore, SG, 119963
Company: LRQA
Job ID:44109
Location:Singapore
Position Category:Consulting
Position Type:Employee Regular
About LRQA
At LRQA our focus has always been on excellence in cybersecurity. We have teams that offer world class services in red teaming, penetration testing, threat intelligence, research and development, detection and response, governance, risk, and compliance, and plenty more. Our business is global and so are our clients. We work closely with central banks, central and local government, critical national infrastructure, large retailers, and plenty more besides!
We’re an award-winning provider of cybersecurity services and we’re at a very exciting stage of development. We are looking for the right people to join us as we embrace the challenges thrown up by the advancements within the IT industry and within the threats faced. LRQA will be at the forefront of this arena and we want to seek the right people to join the team and make it happen.
You can find out more about us at https://www.lrqa.com/en-us/cyber-security-services/ .
The Role
There is a new, exciting opportunity for a Security Consultant to join LRQA’s dynamic Global Governance Risk and Compliance Team. Our security consultants are responsible for leading and delivering their engagements with our clients. This includes the full lifecycle of an engagement from kick off call, assessments, advisory, report creation, report delivery to debrief.
Location
This role is hybrid working (from home and office) and involves working on client site from time to time. We can support working from across Singapore, but the office is at mTower (near Labrador Park MRT). All applicants will require residence in Singapore.
What You Will Do
- Plan, lead and deliver GRC engagements for IT, OT and CII environments across a broad range of recognised security frameworks, standards, and regulatory requirements (CSA’s CCoP and SBD Framework, Singapore’s Cyber Trust Mark, MAS TRMG, NIST CSF, ISO 27001, ISO 42001, Risk Assessments, PCI DSS Assessments/Consultancy).
- Identify, assess, analyse and document cybersecurity risks through structured risk assessments, maintaining risk registers that include risk identification, evaluation, treatment plans, ownership and tracking.
- Support clients in achieving regulatory compliance and certification readiness through pre-assessment reviews, remediation validation, audit preparation, and coordination with certification bodies, external auditors, or regulators.
- Produce clear, concise and well-reasoned reports that demonstrate technical accuracy, commercial awareness and actionable recommendations to both technical stakeholders and senior management, while incorporating feedback from internal quality assurance reviews to continuously improve deliverable quality.
- Deliver professional, consultative engagements across a diverse range of critical infrastructure including aviation, energy and power, financial services, government, transportation, maritime and public utilities.
- Support business development and pre-sales activities by providing technical input into proposals, defining engagement scope, identifying assumptions and dependencies, estimating effort, and contributing to scope estimates alongside Account Managers.
- Contribute to the continuous improvement of LRQA's consulting methodologies, templates, tools and knowledge repositories to enhance engagement quality, efficiency and consistency.
- Be a team player and collaborate effectively with colleagues across GRC and other technical practices to ensure successful project delivery, mentor and coach fellow consultants, knowledge sharing and a consistent client experience.
Key Skills
We welcome candidates from diverse technical and consulting backgrounds who demonstrate a combination of the following skills:
- Practical experience delivering GRC engagements and working knowledge of information security principles across enterprise IT, Cloud, OT and ICS/IACS, or CII environments.
- Broad understanding of networking, operating systems, enterprise applications, and cybersecurity technologies.
- Experience within regulated or critical sectors such as aviation, energy and utilities, financial services, government, transportation, healthcare, manufacturing, maritime or CII is desirable.
- Strong stakeholder management skills, with the ability to establish credibility and communicate effectively with both technical teams and executive leadership.
- Structured, analytical, critical thinking and problem-solving skills with strong written communication skills to produce clear, concise and professional client-ready reports, presentations and documentation.
- Ability to independently manage multiple client engagements while maintaining a high standard of quality and diligence.
- Previous experience in software development, system administration, infrastructure engineering, networking, cloud engineering or related technical disciplines is advantageous.
Candidates holding one or more of the following certifications will be viewed favourably:
- Bachelor’s degree (or equivalent) in Computer Science, Information Technology, Cybersecurity, Engineering, or another relevant technical discipline.
- CISSP, CISM, CISA, CRISC
- ISO/IEC 27001 Lead Auditor and/or ISO/IEC 42001 Lead Auditor
- GICSP, IEC62443 or any other recognised ICS/IACS/OT security certification
- Cloud security certifications (e.g. CCSP, vendor-specific cloud security credentials)
- Relevant national or sector-specific compliance credentials
Why Should You Work With Us?
We have industry leading levels of employee retention, and for good reason; we’re the kind of place that no one wants to leave! Our cyber unit includes the full spectrum of services from Governance Risk and Compliance, SOC analysis and Incident Response through Penetration Testing, Adversarial Simulation (Red Teaming) and Threat Intelligence. There are always people available to help you and always more to learn.
We push ourselves to be excellent, so if you’re the kind of person who loves deep technical challenges and a fantastic work environment, we welcome your interest. Please do visit our website to understand more about how we develop our people, work on cutting edge engagement and offer multiple career progression paths.
What We Offer
We offer you an exciting working environment with intellectual challenges, responsibility, and high-level client interaction. An attractive package is available for the right candidate.
Why Join Us?
- Be part of a dynamic team focused on innovation and strategic growth.
- Collaborate with industry leaders and contribute to LRQA's thought leadership.
- Enjoy a role that offers opportunities for professional development and career advancement.
Apply Now and Shape the Future with LRQA!
At LRQA, we belive that as a leading Global Leading Assurance and Risk Management Service provider, our talented people are our risk management advantage.
We belive the best outcomes come from diverse perspectives, shared ambition and working together with integrity. That's how we buid a workplace where everyone can contribute, grow and thrive.
Guided by Vision and powered by Expertise, we're united by a shared purpose. If you're driven to make a difference, you'll belong here.
All rights reserved. Terms of use. Privacy Policy.
